16 matches found
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerabilities have been resolved: KVM: x86: Added SRCU protection for reading PDPTRs in getsregs2. Added SRCU read-side protection when reading PDPTR registers in getsregs2. Reading PDPTRs may trigger access to guest memory: kvmpdptrread - svmcachereg -...
Exploit for Access of Memory Location Before Start of Buffer in Apple Ipados
CVE-2024-27840 — Kernel Memory Protection Bypass First publ...
CVE-2026-23346
CVE-2026-23346 affects the Linux kernel (arm64) in the ioremap_prot pathway. The root cause is that ioremap_prot() may extract non-address bits from a user mapping’s pgprot_t (including permissions) and generate a new user mapping, which can be accessed by the kernel when PAN is enabled. This can...
PT-2026-22676
Name of the Vulnerable Software and Affected Versions versions prior to 2026-0028 Description An out-of-bounds write issue exists in the pkvm host share guest function within mem protect.c due to an integer overflow. This could allow for local escalation of privilege without requiring additional...
EUVD-2021-17573
Malware in sbrugna...
EUVD-2025-27882
Malicious code in bioql PyPI...
EUVD-2022-36002
Malicious code in bioql PyPI...
CVE-2025-31234
The issue was addressed with improved input sanitization. This issue is fixed in visionOS 2.5, iOS 18.5 and iPadOS 18.5, macOS Sequoia 15.5, tvOS 18.5. An attacker may be able to cause unexpected system termination or corrupt kernel memory...
SUSE CVE-2023-53000
In the Linux kernel, the following vulnerability has been resolved: netlink: prevent potential spectre v1 gadgets Most netlink attributes are parsed and validated from nlavalidateparse or validatenla u16 type = nlatypenla; if type == 0 || type maxtype / error or continue / @type is then used as a...
CVE-2023-53000
CVE-2023-53000 is a Linux kernel vulnerability affecting the netlink attribute handling. The issue arises when the netlink attribute type (nla_type) is used as an index after validation, enabling a possible Spectre v1 gadget to leak kernel memory to a local attacker. The public description notes ...
UBUNTU-CVE-2022-49122
In the Linux kernel, the following vulnerability has been resolved: dm ioctl: prevent potential spectre v1 gadget It appears like cmd could be a Spectre v1 gadget as it's supplied by a user and used as an array index. Prevent the contents of kernel memory from being leaked to userspace via...
CVE-2021-25416
Assuming EL1 is compromised, an improper address validation in RKP prior to SMR JUN-2021 Release 1 allows local attackers to create executable kernel page outside code area...
USN-3690-1 amd64-microcode update
Jann Horn discovered that microprocessors utilizing speculative execution and branch prediction may allow unauthorized memory reads via sidechannel attacks. This flaw is known as Spectre. A local attacker could use this to expose sensitive information, including kernel memory. This update provide...
SUSE-SU-2017:0407-1 Security update for the Linux Kernel
The SUSE Linux Enterprise 12 rt-kernel was updated to 3.12.69 to receive various security and bugfixes. The following security bugs were fixed: - CVE-2015-8962: Fixed a double free vulnerability in the SCSI subsystem that allowed local users to gain privileges or cause a denial of service memory...
The vulnerability of the Mac OS X operating system allows a perpetrator to gain access to protected information in the kernel’s memory.
The vulnerability of the IOGraphics component in the Mac OS X operating system is related to the lack of protection for service data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain access to protected information in the kernel memory through a specially...
Grsecurity Kernel Patch 1.9.4 (Linux Kernel) - Memory Protection
Grsecurity Kernel Patch 1.9.4 Linux Kernel - Memory Protection source: https://www.securityfocus.com/bid/4762/info An attacker with root access may be able to write to kernel memory in spite of the security patch provided by grsecurity. The patch operates by redirecting the write system call, whe...